This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


RE: [Xen-users] TCP Sniffing issues + Snort

To: 'Rodrigo Brayner' <rodrigo@xxxxxxxxxxxxx>, "xen-users@xxxxxxxxxxxxxxxxxxx" <xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] TCP Sniffing issues + Snort
From: Stephen Spector <stephen.spector@xxxxxxxxxx>
Date: Mon, 21 Dec 2009 09:14:13 -0500
Accept-language: en-US
Acceptlanguage: en-US
Delivery-date: Mon, 21 Dec 2009 06:15:03 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <84675f350912210416u1d050f85s91b3632a4c54821@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <84675f350912210416u1d050f85s91b3632a4c54821@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcqCN+CHYjEJ6EzVRKKHX8CWLwIKdQAD84+w
Thread-topic: [Xen-users] TCP Sniffing issues + Snort

I'm just starting on virtualization with Citrix XenServer and I would really appreciate if anyone could help me. First of all, sorry if I couldn't find an answer on forum, but I've already tried hard.

I'm facing some problems regarding tcp sniffing on a debian lenny virtual server on citrix xenserver 5.5.0 installed on a Dell server HW. I have the server configured with two virtual interfaces, where one of them is receiving a mirrored traffic from an extreme switch. When trying tcpdump directly on xenserver on that interface I can see the full traffic on both xenbr or eth interfaces. Trying tcpdump on the virtual server I can only get UDP traffic (netbios...). I have already tried the procedure described on http://support.citrix.com/article/CTX121729 and others many times, however it is definitely not working. When I try the same procedure on HP or IBM server, I can't even get tcpdump working on the citrix xenserver shell. Am I missing something here?

Did you try the Citrix XenServer message forums at http://forums.citrix.com/category.jspa?categoryID=101? The forums you are on are for the open source Xen virtualization solutions. Thanks.

Stephen Spector

Xen-users mailing list
<Prev in Thread] Current Thread [Next in Thread>